HackenPost blogs - Page 89 of 111

Data Breaches

DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

The threat actors behind the DragonForce ransomware gained access to an unnamed Managed Service Provider’s (MSP) SimpleHelp remote…

May 29, 2025

Data Breaches

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

Google on Wednesday disclosed that the Chinese state-sponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS…

May 29, 2025

Data Breaches

Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin

Cybersecurity researchers have disclosed a critical unpatched security flaw impacting TI WooCommerce Wishlist plugin for WordPress that could…

May 29, 2025

Data Breaches

Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

An Iranian national has pleaded guilty in the U.S. over his involvement in an international ransomware and extortion…

May 28, 2025

Data Breaches

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

The Czech Republic on Wednesday formally accused a threat actor associated with the People’s Republic of China (PRC)…

May 28, 2025

Data Breaches

Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File

Cybersecurity researchers have discovered a security flaw in Microsoft’s OneDrive File Picker that, if successfully exploited, could allow…

May 28, 2025

Data Breaches

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

Embedded Linux-based Internet of Things (IoT) devices have become the target of a new botnet dubbed PumaBot. Written…

May 28, 2025

Data Breaches

From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign

Stealer malware no longer just steals passwords. In 2025, it steals live sessions—and attackers are moving faster and…

May 28, 2025

Data Breaches

New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency

Misconfigured Docker API instances have become the target of a new malware campaign that transforms them into a…

May 27, 2025

Data Breaches

Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets

Cybersecurity researchers have disclosed a new malicious campaign that uses a fake website advertising antivirus software from Bitdefender…

May 27, 2025

Hand-Picked Top-Read Stories

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

Trending Tags

DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin

Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign

New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency

Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers